$ rpki-client -vvf repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32342d3234203d3e20313430343233.roa File: 3130332e3139312e36302e302f32342d3234203d3e20313430343233.roa (raw, json) Hash identifier: sSH+72BWEr4MQc7BgNlbk4H5MkWrjKvE4wSUUqHwmBM= Subject key identifier: 8F:D4:36:53:9A:0A:81:02:78:68:11:63:73:15:5F:8C:D1:66:0A:D7 Certificate issuer: /CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Certificate serial: 3A9C1D05D849AB3654746480B3DA3F03C9FCCB24 Authority key identifier: 2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32342d3234203d3e20313430343233.roa Signing time: Tue 01 Apr 2025 12:00:02 +0000 ROA not before: Tue 01 Apr 2025 11:55:02 +0000 ROA not after: Tue 31 Mar 2026 12:00:02 +0000 asID: 140423 IP address blocks: 103.191.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.crl rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 03:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:9c:1d:05:d8:49:ab:36:54:74:64:80:b3:da:3f:03:c9:fc:cb:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Validity Not Before: Apr 1 11:55:02 2025 GMT Not After : Mar 31 12:00:02 2026 GMT Subject: CN=8FD436539A0A81027868116373155F8CD1660AD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:57:2c:ea:c2:e4:1d:9f:3a:02:f9:0c:d8:54: 38:6b:70:3e:31:88:39:78:0d:30:38:54:dd:76:3c: bf:23:98:29:50:fd:04:de:71:f5:70:2c:68:ff:f3: ef:d3:79:0f:4e:98:90:58:ef:5c:2d:1e:27:d5:e3: 4a:c4:ca:1a:34:0a:49:b7:3f:82:cf:9b:86:6c:a4: 4b:12:fa:3a:7e:cc:48:fc:a8:69:2b:e9:55:d9:df: f0:ee:11:4f:4e:0b:fa:62:cf:75:40:3c:2b:79:c6: ec:4b:ea:e9:a4:80:fa:81:69:d9:a5:ab:cd:99:3d: 9b:77:2b:08:28:c4:de:b3:be:f5:c9:49:9d:bb:e7: 5c:a3:c5:8a:00:32:3a:8b:08:6b:24:e0:53:63:d3: b5:c6:12:36:9c:3c:1c:dc:5e:cc:f8:70:fc:53:ae: e1:a0:86:49:69:15:0d:62:56:95:9d:39:4f:2b:7d: d4:19:d3:b4:fe:1b:6d:f8:bd:f1:ee:8a:ab:56:10: a0:cc:55:21:b8:a0:35:90:15:83:19:ce:47:e0:43: 6c:3c:d7:6b:4b:32:04:5d:b8:62:04:2e:8f:dc:56: f0:b4:7c:4a:90:51:fa:ba:10:73:ba:32:14:a9:cb: 0d:bd:c2:aa:24:fa:2b:e3:b3:88:58:59:36:78:e8: 88:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D4:36:53:9A:0A:81:02:78:68:11:63:73:15:5F:8C:D1:66:0A:D7 X509v3 Authority Key Identifier: keyid:2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32342d3234203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.60.0/24 Signature Algorithm: sha256WithRSAEncryption b2:5c:c0:0f:a6:85:7e:60:d0:4e:ba:96:1f:c2:e1:de:46:4d: 7d:28:0a:81:a9:76:83:52:24:cb:0c:54:23:01:1b:fb:47:bd: f5:88:26:22:c2:80:44:5e:3b:01:6d:68:db:e6:35:d3:dc:d4: 9d:2d:cb:0d:3f:21:94:b6:5a:f0:1e:46:e0:6b:65:a4:cd:0d: 99:6d:cd:17:ca:a1:8b:89:5c:e6:f9:16:db:97:12:45:d4:62: 1b:e7:af:7f:c2:2e:51:56:b3:12:3b:8a:95:a6:13:a8:0c:d0: b0:73:fd:90:18:f7:31:6c:3b:3a:4f:40:61:2b:5a:bc:67:99: 80:03:99:e4:ff:b5:4b:71:80:36:63:92:c1:99:26:30:08:bd: d8:45:1f:f2:e5:e2:24:95:4e:58:c2:44:fa:aa:6e:be:0c:31: 00:ef:99:b1:c1:ee:c7:66:97:98:6a:1b:52:0a:d3:63:b0:58: 7a:a3:dd:dc:41:e9:b0:f0:95:27:b1:90:ca:97:06:85:de:09: ca:a8:ac:b3:8b:d1:a9:47:78:62:a5:8b:01:43:ed:7c:45:a1: ed:49:6e:9f:c3:f1:52:65:ea:70:19:9e:67:6a:22:d1:90:48: 5d:e9:ff:60:b3:ff:5c:07:8e:03:ae:38:1e:ba:23:6f:a9:00: 8f:c2:5c:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOpwdBdhJqzZUdGSAs9o/A8n8yyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ2Rjk2RkE2MzBFQTdBRTBBMkIxMjJCNkYwNENDNEY1 RjMyQ0VCNTAeFw0yNTA0MDExMTU1MDJaFw0yNjAzMzExMjAwMDJaMDMxMTAvBgNV BAMTKDhGRDQzNjUzOUEwQTgxMDI3ODY4MTE2MzczMTU1RjhDRDE2NjBBRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpVyzqwuQdnzoC+QzYVDhrcD4x iDl4DTA4VN12PL8jmClQ/QTecfVwLGj/8+/TeQ9OmJBY71wtHifV40rEyho0Ckm3 P4LPm4ZspEsS+jp+zEj8qGkr6VXZ3/DuEU9OC/piz3VAPCt5xuxL6umkgPqBadml q82ZPZt3KwgoxN6zvvXJSZ2751yjxYoAMjqLCGsk4FNj07XGEjacPBzcXsz4cPxT ruGghklpFQ1iVpWdOU8rfdQZ07T+G234vfHuiqtWEKDMVSG4oDWQFYMZzkfgQ2w8 12tLMgRduGIELo/cVvC0fEqQUfq6EHO6MhSpyw29wqok+ivjs4hYWTZ46Ij5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUj9Q2U5oKgQJ4aBFjcxVfjNFmCtcwHwYDVR0j BBgwFoAULW+W+mMOp64KKxIrbwTMT18yzrUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTM0ZDJkOC0zNGFmLTQ3NTctOGFkOS05MmRhMzVkOTIxNjgvMC8yRDZGOTZGQTYz MEVBN0FFMEEyQjEyMkI2RjA0Q0M0RjVGMzJDRUI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ2Rjk2RkE2MzBFQTdBRTBBMkIxMjJCNkYwNENDNEY1RjMy Q0VCNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMzRkMmQ4LTM0YWYtNDc1Ny04 YWQ5LTkyZGEzNWQ5MjE2OC8wLzMxMzAzMzJlMzEzOTMxMmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ788MA0GCSqG SIb3DQEBCwUAA4IBAQCyXMAPpoV+YNBOupYfwuHeRk19KAqBqXaDUiTLDFQjARv7 R731iCYiwoBEXjsBbWjb5jXT3NSdLcsNPyGUtlrwHkbga2WkzQ2Zbc0XyqGLiVzm +RbblxJF1GIb569/wi5RVrMSO4qVphOoDNCwc/2QGPcxbDs6T0BhK1q8Z5mAA5nk /7VLcYA2Y5LBmSYwCL3YRR/y5eIklU5YwkT6qm6+DDEA75mxwe7HZpeYahtSCtNj sFh6o93cQemw8JUnsZDKlwaF3gnKqKyzi9GpR3hipYsBQ+18RaHtSW6fw/FSZepw GZ5naiLRkEhd6f9gs/9cB44DrjgeuiNvqQCPwlwp -----END CERTIFICATE-----Generated at Wed Apr 9 05:22:27 2025 by rpki-client